Authentication flaw

2019-12-1400:15:00

PRIOn knowledge base

www.prio-n.com

4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.0%

JSON

There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, Honor 9i, Y6 Pro). The applock does not perform a sufficient authentication in a rare condition. Successful exploit could allow the attacker to use the application locked by applock in an instant.

CPENameOperatorVersion
enjoy_8_plus_firmwareeq< 9.1.0.124c0e112r1p6t8
honor_8x_firmwareeq< 9.1.0.217c0e15r3p2t8
honor_8x_firmwareeq< 9.1.0.237c432e1r3p2t8
honor_8x_firmwareeq< 9.1.0.237c636e2r4p1t8
honor_9_lite_firmwareeq< 9.1.0.124c0e112r2p10t8
honor_9_lite_firmwareeq< 9.1.0.136c636e5r1p5t8
honor_9i_firmwareeq< 9.1.0.115c0e113r1p6t8
honor_9i_firmwareeq< 9.1.0.122c636e4r1p4t8
y6_pro_firmwareeq< 9.1.0.248c636e5r3p1
y9_firmwareeq< 9.1.0.131c432e6r1p5t8

Name	Operator	Version
enjoy_8_plus_firmware	eq	< 9.1.0.124c0e112r1p6t8
honor_8x_firmware	eq	< 9.1.0.217c0e15r3p2t8
honor_8x_firmware	eq	< 9.1.0.237c432e1r3p2t8
honor_8x_firmware	eq	< 9.1.0.237c636e2r4p1t8
honor_9_lite_firmware	eq	< 9.1.0.124c0e112r2p10t8
honor_9_lite_firmware	eq	< 9.1.0.136c636e5r1p5t8
honor_9i_firmware	eq	< 9.1.0.115c0e113r1p6t8
honor_9i_firmware	eq	< 9.1.0.122c636e4r1p4t8
y6_pro_firmware	eq	< 9.1.0.248c636e5r3p1
y9_firmware	eq	< 9.1.0.131c432e6r1p5t8